[ietf-dkim] Should DKIM drop SSP?
hsantos at santronics.com
Fri Oct 28 04:18:52 PDT 2005
----- Original Message -----
From: "Douglas Otis" <dotis at mail-abuse.org>
To: "Hector Santos" <hlsdkim at bellsouth.net>
> DKIM should identify the domain associated with the email message
> transport. It is over-reaching, to say the least, when attempting to
> use this mechanism to verify the author of the message. Leave that
> effort to OpenPGP and S/MIME. By establishing the accountable
> domain, abuse can be handled in a more efficient manner than it is
> today. This would also afford opportunistic identifications akin to
> that used with SSH. I don't think this aspect has been given any
Doug, DKIM is like a traffic cop pulling you over and ask for your Driver's
license and Registration. Sure, it can be all fake, but it better be
- You appear to be 40-45, but your license shows a birth
year that would makes you 23 years old?
- You are white, your photo shows you as Afro-American?
- You are a women, your photo shows a bearded man?
- your registration VIN does not match your car VIN.
etc, if anything is inconsistent, you will be immediately scruntized.
Either way, he is required to check your information against the central
databases for the validity of the license and also for any outstanding
tickets, warrants, etc. This is the 3rd entity in the picture that
validates the process. You (Sender), the cop (receiver) and central
In the end, he *should* be turning a blind eye on WHO you really are. You
could be the Mayor of the town and you might have a dead body in the trunk.
He shouldn't care as long as you are playing by the rules. But if you raise
a raise flag, then that begins a new process of actions that could be taken.
Hector Santos, Santronics Software, Inc.
More information about the ietf-dkim